5ed600d7eaf455dda36a428c38b8a750 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5ed600d7eaf455dda36a428c38b8a750
Size

179KB
MD5

5ed600d7eaf455dda36a428c38b8a750
SHA1

366995160683d4ea469e6d472d086304208960dd
SHA256

6939d94f5983a5aa320b885adc1d79c571f4ae6c47ff0e82e6845e1b4763fa8b
SHA512

8e3767985a9565a8e6938fb34b97e8cef92bfa53d1dd74d4ea4020e5d3c346271bf016236f56420b4b9d8768fe8d1c83f223f4a998e90036f00241c452119ee7
SSDEEP

3072:tHtU2yVfuRRaGGSb4jGreoRmPdxvawuqLk33I2UWLo1qmT91CvHrg4PoXKZRB:tHtECBGoeoRYdpawuqLwPbUuHErXKZr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5ed600d7eaf455dda36a428c38b8a750

Files

5ed600d7eaf455dda36a428c38b8a750
.exe windows:4 windows x86 arch:x86

bc3442240dec373998f899bd659c4142

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalGetAtomNameW
SetFilePointer
FindFirstFileA
GetCurrentThreadId
GetModuleHandleA
EnumResourceLanguagesW
IsDBCSLeadByte
QueryPerformanceCounter
EnumResourceTypesA
ReadFile
WideCharToMultiByte
WriteFile
GetSystemDirectoryW
GlobalHandle
lstrlenA
GetCurrentProcessId
FindNextFileA
FindClose

oleacc

LresultFromObject
CreateStdAccessibleProxyA

newdev

UpdateDriverForPlugAndPlayDevicesA

Sections

.text
Size: 86KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 90KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ